URLhaus Database

You are currently viewing the URLhaus database entry for https://teleguru.com.au/wp-content/PmzcwGED/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:936128
URL: https://teleguru.com.au/wp-content/PmzcwGED/
URL Status:Offline
Host: teleguru.com.au
Date added:2020-12-21 19:45:08 UTC
Last online:2020-12-22 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2020-12-21 19:46:02 UTC to abuse{at}amazonaws[dot]com)
Takedown time:22 hours, 2 minutes Good (down since 2020-12-22 17:48:25 UTC)
Tags:doc emotet link epoch2 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-12-22AGFK3RISNKPG49V.docdoc 6191dcfff06f36e7ae3ffab9272718d60482913bac94ce985ce8a5eaca930e26Virustotal results 43.55%Heodo
2020-12-22XEXLRXMF6P8T.docdoc b4c07579191b925b8d588484fde55e5ff1e83e7b82f482d041b8913d1f2d7485Virustotal results 42.19%Heodo
2020-12-22PYGN6IIY.docdoc 0529eb660d413f7804da233612e8bd55fae073a9f2af58b046f7f8a24a5a99beVirustotal results 41.94%Heodo
2020-12-220ER8VBFPH6.docdoc de156d934984014292776d34ab173ee1fa9352b96ff42780479fc6eae2b114d0Virustotal results 38.71%Heodo
2020-12-22TJR03LSHENCO07HV.docdoc af92a129d35b30bd55269f49ba230a5702cee5b9b18634c2f4829d052d208089n/aHeodo
2020-12-22UHYF3JBOZ3AIS9BF.docdoc 6f31c56a8ea0949ade1a3cabc55e00d367bb073cfaf7f1b447258c79483910f4Virustotal results 37.10%Heodo
2020-12-222A4Q7GVTC.docdoc 0906ccd9d06e96d68c703f978adce40508265b51032f906a9d16c86e0194f779n/aHeodo
2020-12-22CBDNWJA.docdoc be0dbaaec3415c76acd2fa6e9c3969d8bf86f058be7e69e357518e173ba4d246Virustotal results 33.87%Heodo
2020-12-22J0THRB42ZN.docdoc 2b9c863d07937c6130c145012febf915401100b8a7e5361cd8244ba88af53411n/aHeodo
2020-12-22PICJNQ1VN.docdoc b7bad120c0c3ba7ed2881c98fc26104cefee58148b7c5850ceb87b683595f2a8n/aHeodo
2020-12-22OR5IKDGXYX065HZ.docdoc 30fcb0b638fa78c9ec712cfdde89641c5d6a6ae28c3bd1fa75b29f9b78855721n/aHeodo
2020-12-22JHCWOOPNPEIHYR.docdoc 6e80cf87bd4ef21287958848ca5250a78cf17cf17f09a9b1b11cd37a01a24202n/aHeodo
2020-12-22ZLLCAKCUO42.docdoc 7ec200a834392208ae8521c4804d11ff669137b4265b732a17660527ccf3cf36Virustotal results 36.51%Heodo
2020-12-22A0Y7UQAOPXAUMK.docdoc 0ca72ce4d6b45d4c63a514d52e63ef5d16506801e86c1580e6196848f66577d1n/aHeodo
2020-12-22A8L9CDIH8PKMLZM.docdoc b243c7cc81b3d66be13ecf0f9876b4e579c80b51dbece8f9a0be2bf85542437fn/aHeodo
2020-12-22KYBJFCQPIP524D.docdoc bf71d36b2ba7d0198a2bebd6c351f932fba9da682a76a354de6b798db426a9e9n/aHeodo
2020-12-22V773L6BR3MZ2.docdoc 8d81a91518edb9064843167a920609e56978183e85642ee805484047d2629808n/aHeodo
2020-12-22BB4GQ4MLSKHMSSCK.docdoc 1ebb0eb36a2dba1d5dd9648b8e96e8e7c03fb0cddae7d0060ad0aa7990f5dcefn/aHeodo
2020-12-22TFQEXWX5G.docdoc 6e64c93e0929da5ff396df56de2ba50ef16098d90feea49e0a1973edb6dd4238Virustotal results 31.75%Heodo
2020-12-2268DT2XQJD.docdoc 3ffaf475cb8655c59598f2c4591efaf0b153a52173bfb3a63c238008edb72201Virustotal results 32.26%Heodo
2020-12-22WGOP67.docdoc 90eb141295b5129c24d9912d41c928c501d0686504aa1f4df32fe72fedaabf6dn/aHeodo
2020-12-22L5JOIQXFJAA8X2O.docdoc 5149cb89cfadd9c7f7be6ff7dcd70eecba452c53d75bd5622bbb334b4ae587dfn/aHeodo
2020-12-223D9X9SP1MX6K9X.docdoc 566fe93d300d3868d8d2cd02737b4f06a8cbbe4827e8280a372807fa3b807e80n/aHeodo
2020-12-22TKXUYQ.docdoc d891344c9d8a55fb3c94ca53e96c96b05a56789cf097d10b30e9f0533abb1665Virustotal results 30.16%Heodo
2020-12-2240XZTNHAI1V.docdoc fed94c0a35c3aee2ff982f1f4001348cd2f048009efffc9676fcdb1ad6ebc374Virustotal results 30.65%Heodo
2020-12-22NKKY3UOPV3LVZAGU.docdoc e832702bcd4a1bc593af89baf3e22083205d412a049797b164db2d6177678325Virustotal results 49.21%Heodo
2020-12-22L9FGOC.docdoc 852a163a7446bab72a51cddd9a4f9779ed06d409186cab20d69127d08fa490f7Virustotal results 45.90%Heodo
2020-12-22FI2JU1.docdoc 7fd615d48a50b75b7a5871e58c4a849d24096bc79b1d12ff4de33d702ffa7ee7n/aHeodo
2020-12-224NELETI8SXLV4V.docdoc bbab6187c511a9ba4756bd3c521c97474ced9d06588b917d285dd457b4f590d9n/aHeodo
2020-12-22HQD95NSF98QGIY.docdoc 2e2845f894af1842a98bb01b55cf68757e6c573d1d97c11cf41818de4a70f82bVirustotal results 46.77%Heodo
2020-12-22PITHHSFTF0.docdoc 716592916c6f39ede3e673f03bfadfc09349bf29a45ad31bdd83faa58b0efc0aVirustotal results 50.79%Heodo
2020-12-22DHZ04S386HNV3.docdoc 6c26774c4763bbbc05c970dbe0b96045fefbdffc80c2d7878e8ca8089f0215c9n/aHeodo
2020-12-22VRYNH2BLW20E0.docdoc 45defa35954d6268fe26f6ffec131a6de427af2f682079ef11852a33ff1db07dVirustotal results 46.03%Heodo
2020-12-22BWU0TLKYQ6F91C.docdoc 56653f85b04940e6ed43fa36bad1c147ff98665b1466dd59f46fbaa65b38f209n/aHeodo
2020-12-22KOI1LZBAX86LK.docdoc 47d01951e8e4d0425373658359ab6e4e764c29adf9f0a674dc51fc859ee31719Virustotal results 38.10%Heodo
2020-12-22GL90U4JBSF2Q8O.docdoc ce6fb78ce0ce59ac239eebb55984e0497f6f9616a5a4ab3fe28b63e8456f3e8aVirustotal results 45.16%Heodo
2020-12-22MMLREZVREH.docdoc 9eaf41a79c3932d4be36d56a7b01c16f4bc4ae8d3df11291ba46f7e2dc784627Virustotal results 44.26%Heodo
2020-12-22NKKH7KIM.docdoc 47fb863700031a20e693b095a8cdb17ee3304a8e6db9ddee52b8b003d707cb4dVirustotal results 41.27%Heodo
2020-12-21ZP55P2S1QM.docdoc 83e9ba22a2d674453b12f9150d400d11d35d268d6965b4082c08f070fadfa169Virustotal results 40.32%Heodo
2020-12-21QV0WW4CURAA.docdoc 1b6b2ecc603828983b205c802ab3f8d0dda28658c0a31afc6aaff4024f2c161bVirustotal results 38.10%Heodo
2020-12-21RKCM08YGL1CYU.docdoc 304df861b9a54bce9054f0401652f3fde7dfee32bd8da0bfc3c18c48c2ac4a52Virustotal results 38.10%Heodo
2020-12-21HJV8QY587N.docdoc ef0b9b3ff775e1bac1d43f128b264df8589445cffd75d750ebfbd86dc11d18abVirustotal results 37.10%Heodo
2020-12-21ZBEHDT9A76I8.docdoc b0e697eb8ea66997602b281b7a989cdac530defaceadc9fba378fe5f7035bfd8Virustotal results 37.10%Heodo
2020-12-213FHTSLYU.docdoc e8b5059dd469cac6775dea2dd2c6b13026530124522eb8660f6f35c1e3bc3db5Virustotal results 38.10%Heodo
2020-12-21R43LZY5BM1ZVR8IB.docdoc 4f534c47f011a11b094440cff6fab9d7295556a7713df8c207b586fdb5437f0an/aHeodo
2020-12-21ODTRCOEM7RLI.docdoc 95a4d2480290315c02470416ede2042f9a39ce8c447cacd3e4fa514460ddb9b8Virustotal results 36.51%Heodo
2020-12-210ZBS9UOO4BCJEIN.docdoc 76279a5a6a7e70eca6f947c10a49e274f0da55633b57b85e883d1534e90b7151Virustotal results 33.33% Heodo
2020-12-21RKCJ2FEXY9.docdoc a9f0983929e4cd87eda566f59d2b64fda06bddf030ea2d91dd3c244d558bfb7an/aHeodo
2020-12-21SL7E320COH.docdoc 43455e70fa324c7fac5e79aefa83646cc0d54e526b57df42aeb3d1ce78700e22Virustotal results 33.33%Heodo
2020-12-217U98E0DFNQ6R.docdoc eba7670216621c387717c567e5bfcb7585b6f3dcfbea61349a2fde954afc258dVirustotal results 31.75%Heodo
2020-12-210XHH0FQYEK684CQ.docdoc c132ac31a459ff6f1ffa30fec461dba1b0939299210c071e84a6c84a0763f149n/aHeodo